ExamGecko
Login
Home / Google / Professional Cloud Architect / List of questions
Ask Question

Google Professional Cloud Architect Practice Test - Questions Answers, Page 14

List of questions

Question 131

Report
Export
Collapse

Your customer wants to do resilience testing of their authentication layer. This consists of a regional managed instance group serving a public REST API that reads from and writes to a Cloud SQL instance.

What should you do?

Engage with a security company to run web scrapers that look your for users' authentication data om malicious websites and notify you if any is found.
Engage with a security company to run web scrapers that look your for users' authentication data om malicious websites and notify you if any is found.
Deploy intrusion detection software to your virtual machines to detect and log unauthorized access.
Deploy intrusion detection software to your virtual machines to detect and log unauthorized access.
Schedule a disaster simulation exercise during which you can shut off all VMs in a zone to see how your application behaves.
Schedule a disaster simulation exercise during which you can shut off all VMs in a zone to see how your application behaves.
Configure a read replica for your Cloud SQL instance in a different zone than the master, and then manually trigger a failover while monitoring KPIs for our REST API.
Configure a read replica for your Cloud SQL instance in a different zone than the master, and then manually trigger a failover while monitoring KPIs for our REST API.
Suggested answer: C
asked 18/09/2024
Claudious Utete
40 questions

Question 132

Report
Export
Collapse

Your BigQuery project has several users. For audit purposes, you need to see how many queries each user ran in the last month. What should you do?

Connect Google Data Studio to BigQuery. Create a dimension for the users and a metric for the amount of queries per user.
Connect Google Data Studio to BigQuery. Create a dimension for the users and a metric for the amount of queries per user.
In the BigQuery interface, execute a query on the JOBS table to get the required information.
In the BigQuery interface, execute a query on the JOBS table to get the required information.
Use 'bq show' to list all jobs. Per job, use 'bq Is' to list job information and get the required information.
Use 'bq show' to list all jobs. Per job, use 'bq Is' to list job information and get the required information.
Use Cloud Audit Logging to view Cloud Audit Logs, and create a filter on the query operation to get the required information.
Use Cloud Audit Logging to view Cloud Audit Logs, and create a filter on the query operation to get the required information.
Suggested answer: C
asked 18/09/2024
Nosh Shah
37 questions

Question 133

Report
Export
Collapse

You want to automate the creation of a managed instance group. The VMs have many OS package dependencies. You want to minimize the startup time for new VMs in the instance group. What should you do?

Use Terraform to create the managed instance group and a startup script to install the OS package dependencies.
Use Terraform to create the managed instance group and a startup script to install the OS package dependencies.
Create a custom VM image with all OS package dependencies. Use Deployment Manager to create the managed instance group with the VM image.
Create a custom VM image with all OS package dependencies. Use Deployment Manager to create the managed instance group with the VM image.
Use Puppet to create the managed instance group and install the OS package dependencies.
Use Puppet to create the managed instance group and install the OS package dependencies.
Use Deployment Manager to create the managed instance group and Ansible to install the OS package dependencies.
Use Deployment Manager to create the managed instance group and Ansible to install the OS package dependencies.
Suggested answer: B
asked 18/09/2024
Osman Rana
38 questions

Question 134

Report
Export
Collapse

Your company captures all web traffic data in Google Analytics 360 and stores it in BigQuery. Each country has its own dataset. Each dataset has multiple tables. You want analysts from each country to be able to see and query only the data for their respective countries.

How should you configure the access rights?

Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery jobUser. Share theappropriate dataset with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery jobUser. Share theappropriate dataset with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery jobUser. Share theappropriate tables with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery jobUser. Share theappropriate tables with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery dataViewer. Share theappropriate dataset with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery dataViewer. Share theappropriate dataset with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery dataViewer. Share theappropriate table with view access with each respective analyst country-group.
Create a group per country. Add analysts to their respective country-groups. Create a single group 'all_analysts', and add all country-groups as members. Grant the 'all-analysis' group the IAM role of BigQuery dataViewer. Share theappropriate table with view access with each respective analyst country-group.
Suggested answer: A
asked 18/09/2024
Amanda Ferrucho
26 questions

Question 135

Report
Export
Collapse

You have been engaged by your client to lead the migration of their application infrastructure to GCP. One of their current problems is that the on-premises high performance SAN is requiring frequent and expensive upgrades to keep up with the variety of workloads that are identified as follows: 20TB of log archives retained for legal reasons; 500 GB of VM boot/data volumes and templates; 500 GB of image thumbnails; 200 GB of customer session state data that allows customers to restart sessions even if off-line for several days.

Which of the following best reflects your recommendations for a cost-effective storage allocation?

Local SSD for customer session state data. Lifecycle-managed Cloud Storage for log archives, thumbnails, and VM boot/data volumes.
Local SSD for customer session state data. Lifecycle-managed Cloud Storage for log archives, thumbnails, and VM boot/data volumes.
Memcache backed by Cloud Datastore for the customer session state data. Lifecycle- managed Cloud Storage for log archives, thumbnails, and VM boot/data volumes.
Memcache backed by Cloud Datastore for the customer session state data. Lifecycle- managed Cloud Storage for log archives, thumbnails, and VM boot/data volumes.
Memcache backed by Cloud SQL for customer session state data. Assorted local SSD-backed instances for VM boot/data volumes. Cloud Storage for log archives and thumbnails.
Memcache backed by Cloud SQL for customer session state data. Assorted local SSD-backed instances for VM boot/data volumes. Cloud Storage for log archives and thumbnails.
Memcache backed by Persistent Disk SSD storage for customer session state data. Assorted local SSD-backed instances for VM boot/data volumes. Cloud Storage for log archives and thumbnails.
Memcache backed by Persistent Disk SSD storage for customer session state data. Assorted local SSD-backed instances for VM boot/data volumes. Cloud Storage for log archives and thumbnails.
Suggested answer: D
asked 18/09/2024
Anthony Zaborski
48 questions

Question 136

Report
Export
Collapse

Your web application uses Google Kubernetes Engine to manage several workloads. One workload requires a consistent set of hostnames even after pod scaling and relaunches.

Which feature of Kubernetes should you use to accomplish this?

StatefulSets
StatefulSets
Role-based access control
Role-based access control
Container environment variables
Container environment variables
Persistent Volumes
Persistent Volumes
Suggested answer: A
asked 18/09/2024
Jeremy Cheeseborough
41 questions

Question 137

Report
Export
Collapse

You are using Cloud CDN to deliver static HTTP(S) website content hosted on a Compute Engine instance group. You want to improve the cache hit ratio.

What should you do?

Customize the cache keys to omit the protocol from the key.
Customize the cache keys to omit the protocol from the key.
Shorten the expiration time of the cached objects.
Shorten the expiration time of the cached objects.
Make sure the HTTP(S) header "Cache-Region" points to the closest region of your users.
Make sure the HTTP(S) header "Cache-Region" points to the closest region of your users.
Replicate the static content in a Cloud Storage bucket. Point CloudCDN toward a load balancer on that bucket.
Replicate the static content in a Cloud Storage bucket. Point CloudCDN toward a load balancer on that bucket.
Suggested answer: A

Explanation:

Reference https://cloud.google.com/cdn/docs/best-practices#using_custom_cache_keys_to_improve_cache_hit_ratio

asked 18/09/2024
Kunle Fodeke
44 questions

Question 138

Report
Export
Collapse

Your architecture calls for the centralized collection of all admin activity and VM system logs within your project.

How should you collect these logs from both VMs and services?

All admin and VM system logs are automatically collected by Stackdriver.
All admin and VM system logs are automatically collected by Stackdriver.
Stackdriver automatically collects admin activity logs for most services. The Stackdriver Logging agent must be installed on each instance to collect system logs.
Stackdriver automatically collects admin activity logs for most services. The Stackdriver Logging agent must be installed on each instance to collect system logs.
Launch a custom syslogd compute instance and configure your GCP project and VMs to forward all logs to it.
Launch a custom syslogd compute instance and configure your GCP project and VMs to forward all logs to it.
Install the Stackdriver Logging agent on a single compute instance and let it collect all audit and access logs for your environment.
Install the Stackdriver Logging agent on a single compute instance and let it collect all audit and access logs for your environment.
Suggested answer: B
asked 18/09/2024
Ty Murray
36 questions

Question 139

Report
Export
Collapse

You have an App Engine application that needs to be updated. You want to test the update with production traffic before replacing the current application version.

What should you do?

Deploy the update using the Instance Group Updater to create a partial rollout, which allows for canary testing.
Deploy the update using the Instance Group Updater to create a partial rollout, which allows for canary testing.
Deploy the update as a new version in the App Engine application, and split traffic between the new and current versions.
Deploy the update as a new version in the App Engine application, and split traffic between the new and current versions.
Deploy the update in a new VPC, and use Google's global HTTP load balancing to split traffic between the update and current applications.
Deploy the update in a new VPC, and use Google's global HTTP load balancing to split traffic between the update and current applications.
Deploy the update as a new App Engine application, and use Google's global HTTP load balancing to split traffic between the new and current applications.
Deploy the update as a new App Engine application, and use Google's global HTTP load balancing to split traffic between the new and current applications.
Suggested answer: B
asked 18/09/2024
juan manuel torrado
34 questions

Question 140

Report
Export
Collapse

All compute Engine instances in your VPC should be able to connect to an Active Directory server on specific ports. Any other traffic emerging from your instances is not allowed. You want to enforce this using VPC firewall rules.

How should you configure the firewall rules?

Create an egress rule with priority 1000 to deny all traffic for all instances. Create another egress rule with priority 100 to allow the Active Directory traffic for all instances.
Create an egress rule with priority 1000 to deny all traffic for all instances. Create another egress rule with priority 100 to allow the Active Directory traffic for all instances.
Create an egress rule with priority 100 to deny all traffic for all instances. Create another egress rule with priority 1000 to allow the Active Directory traffic for all instances.
Create an egress rule with priority 100 to deny all traffic for all instances. Create another egress rule with priority 1000 to allow the Active Directory traffic for all instances.
Create an egress rule with priority 1000 to allow the Active Directory traffic. Rely on the implied deny egress rule with priority 100 to block all traffic for all instances.
Create an egress rule with priority 1000 to allow the Active Directory traffic. Rely on the implied deny egress rule with priority 100 to block all traffic for all instances.
Create an egress rule with priority 100 to allow the Active Directory traffic. Rely on the implied deny egress rule with priority 1000 to block all traffic for all instances.
Create an egress rule with priority 100 to allow the Active Directory traffic. Rely on the implied deny egress rule with priority 1000 to block all traffic for all instances.
Suggested answer: A
asked 18/09/2024
Thiago B
43 questions
Total 285 questions
Go to page: of 29
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Mountkirk Games wants to set up a real-time analytics platform for their new game. The new platform must meet their technical requirements. Which combination of Google technologies will meet all of their requirements?
You are responsible for the Google Cloud environment in your company Multiple departments need access to their own projects and the members within each department will have the same project responsibilities You want to structure your Google Cloud environment for minimal maintenance and maximum overview of 1AM permissions as each department's projects start and end You want to follow Google-recommended practices What should you do?
Your company has an application running as a Deployment in a Google Kubernetes Engine (GKE) cluster When releasing new versions of the application via a rolling deployment, the team has been causing outages The root cause of the outages is misconfigurations with parameters that are only used in production You want to put preventive measures for this in the platform to prevent outages What should you do?
Your company has decided to build a backup replica of their on-premises user authentication PostgreSQL database on Google Cloud Platform. The database is 4 TB, and large updates are frequent. Replication requires private address space communication. Which networking approach should you use?
TerramEarth's 20 million vehicles are scattered around the world. Based on the vehicle's location, its telemetry data is stored in a Google Cloud Storage (GCS) regional bucket (US, Europe, or Asia). The CTO has asked you to run a report on the raw telemetry data to determine why vehicles are breaking down after 100 K miles. You want to run this job on all the data. What is the most cost-effective way to run this job?
JencoMart wants to move their User Profiles database to Google Cloud Platform. Which Google Database should they use?
Your company has a Google Cloud project that uses BigQuery for data warehousing on a pay-per-use basis. You want to monitor queries in real time to discover the most costly queries and which users spend the most. What should you do?
Dress4Win has asked you to recommend machine types they should deploy their application servers to. How should you proceed?
One of the developers on your team deployed their application in Google Container Engine with the Dockerfile below. They report that their application deployments are taking too long. You want to optimize this Dockerfile for faster deployment times without adversely affecting the app's functionality. Which two actions should you take? Choose 2 answers.
You are implementing Firestore for Mountkirk Games. Mountkirk Games wants to give a new game programmatic access to a legacy game's Firestore database. Access should be as restricted as possible. What should you do?